Privacy Policy

Last updated: February 20, 2026

1. Introduction

ClinicalTrials.Tools ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy describes how we collect, use, store, and share your information when you use our website, sample size calculators, design advisor, and related services (collectively, the "Service").

By using the Service, you agree to the practices described in this policy. If you do not agree, please do not use the Service.

2. Information We Collect

Account Information

When you create an account, we collect your name, email address, institutional affiliation (if provided), and authentication credentials. If you sign in via Google or ORCID, we receive your profile information from those providers.

Usage Data

We automatically collect information about how you interact with the Service, including pages viewed, calculators used, features accessed, timestamps, IP address, browser type, and device information.

Calculation Inputs and Outputs

When you run a sample size calculation or use the AI design advisor, we process and may store the parameters you enter and the results generated. Saved calculations are associated with your account and project.

Payment Information

If you subscribe to a paid plan, payment is processed by Stripe. We do not store your full credit card number. Stripe provides us with a token, the last four digits of your card, and billing details.

3. How We Use Your Information

  • To provide, maintain, and improve the Service.
  • To authenticate your identity and manage your account.
  • To process payments and manage subscriptions.
  • To save your projects, calculations, and preferences.
  • To provide AI-powered design recommendations via our design advisor.
  • To send transactional emails (account confirmations, password resets, billing receipts).
  • To analyze usage patterns and improve our calculators and tools.
  • To detect and prevent fraud, abuse, and security incidents.
  • To comply with legal obligations.

4. Data Storage and Security

Your data is stored in encrypted PostgreSQL databases hosted on secure, SOC 2-compliant infrastructure. All data in transit is protected with TLS/SSL encryption. We implement access controls, regular backups, and monitoring to safeguard your information.

While we take reasonable measures to protect your data, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security.

5. Third-Party Services

We use the following third-party services to operate the platform:

  • Stripe — Payment processing and subscription management. Stripe's privacy policy applies to payment data they process.
  • Google Authentication — OAuth sign-in. Google provides us with your name and email when you choose to authenticate via Google.
  • ORCID — OAuth sign-in for researchers. ORCID provides your name and ORCID iD when you choose to authenticate.
  • Anthropic AI — Powers our AI design advisor. Inputs you provide to the advisor are sent to Anthropic's API for processing. Anthropic's usage policies apply to data processed by their models.

We encourage you to review the privacy policies of these third-party providers.

6. Cookie Policy

We use cookies and similar technologies for the following purposes:

  • Essential cookies — Required for authentication, session management, and security.
  • Analytics cookies — Help us understand how visitors use the Service so we can improve it. These may be provided by third-party analytics services.
  • Preference cookies — Remember your settings and preferences across sessions.

You can control cookies through your browser settings. Disabling essential cookies may impair the functionality of the Service.

7. Data Retention

We retain your account information and saved data for as long as your account is active or as needed to provide the Service. If you delete your account, we will remove your personal information and saved projects within 30 days, unless we are required to retain it for legal or compliance purposes.

Anonymized, aggregated usage data may be retained indefinitely for analytics and product improvement.

8. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access — Request a copy of the personal data we hold about you.
  • Correction — Request correction of inaccurate or incomplete data.
  • Deletion — Request deletion of your personal data and account.
  • Portability — Request an export of your data in a machine-readable format (JSON or CSV).
  • Restriction — Request that we limit the processing of your data under certain circumstances.
  • Objection — Object to processing of your data for specific purposes.

To exercise any of these rights, please contact us at the email address below.

9. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such data, please contact us and we will promptly delete it.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date. Your continued use of the Service after changes are posted constitutes acceptance of the updated policy.

11. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Email: privacy@clinicaltrials.tools